CS-Cart templatesmanage Server Side Template Injection Remote Code Execution Vulnerability
Found by: Steven Seeley of 360 Vulcan Team
Version: <= 412x (latest)
Date: 2021-01-08 12:49
CVE: CVE-2021-26121
Disclosure Timeline
2021-01-26 – Sent to CSCart dev team
2021-01-27 – Notification of reciept from CSCart dev team
2021-02-10 – Response from CSCart